February 12, 2026

Tugboat Changelog

v2.26.6

In This Release...

  • Beefed up our Content-Security-Policy headers with additional directives, further hardening the dashboard against cross-site scripting and injection attacks.
  • Fixed a bug where closing a window could knock out real-time updates for all your connected browser tabs. If you ever noticed service states going stale and had to do a full page refresh — that was this guy. Squashed!
  • Added logging for successful and failed login and logout events to improve authentication auditing and security visibility.
  • Added Subresource Integrity (SRI) hashes to externally-hosted stylesheets, so your browser can verify they haven't been tampered with before loading them.

Recent Releases

v2.26.26
June 26, 2026
Lighthouse reports now run faster and more reliably with improved browser sharing and automatic recovery.
v2.26.25
June 15, 2026
Updated Bitbucket login and repository connections ahead of upcoming OAuth security changes from Bitbucket.
v2.26.24
June 10, 2026
WebDAV support in previews and smarter suspension handling with built-in rescue instructions.
v2.26.23
June 8, 2026
SSO users with Maintain role or higher can now access service terminals as expected.
v2.26.22
May 29, 2026
Encrypt sensitive environment variables at rest. We'll hide them everywhere except where your builds actually need them.
View All

Have questions about Tugboat?

Want to learn more about Tugboat and whether it’s the right fit for your team’s needs? Drop us a line. We’d love to chat!

Contact Us
Support
Check out our documentation
Join us on Slack
File a support ticket
Browse our repositories
Tugboat status
Legal
PrivacyTermsCode of ConductAccessibility Statement
Newsletter

Get monthly updates with articles, new features, and case studies.

Subscribe to the Tugboat Newsletter
"Tugboat" is a registered trademark of Tugboat QA, LLC.
Follow us: